Script to remove domain user from local administrator group

-
' (This script can run as logon script without problems because it first check if the user is a member.
' If the user is a local administrator s/he has privileges to remove him/her self from the local group.
' Do Keep in mind however that the user at this stage already is logged-on as an Administrator,
' s/he will keep all the access rights until the next logon).

Set objNetwork = CreateObject("Wscript.Network")
strUser = objNetwork.UserName
strDomain = objNetwork.UserDomain
strComputer = objNetwork.ComputerName

strLocalGroup = "Administrators"

On Error Resume Next

' Bind to local group object.
Set objGroup = GetObject("WinNT://" _
& strComputer & "/" & strLocalGroup & ",group")
If (Err.Number <> 0) Then wscript.Quit

' Bind to the user object on the Domain.
' (use also the WinNT provider).
Set objUser = GetObject("WinNT://" _
& strDomain & "/" & strUser & ",user")
If (Err.Number <> 0) Then wscript.Quit

On Error GoTo 0

' Check If user is a member, then remove him/her self! from local group
If (objGroup.IsMember(objUser.AdsPath) = True) Then
objGroup.Remove(objUser.AdsPath)

End If

Wscript.Quit

Comments

Post a Comment

Popular posts from this blog

Windows Service monitoring and mail reporting Scripts

-
Create following two files and modify accordingly as per your requirement. Create a scheduled batch file to execute. File name Service Test.bat Set Location as C:\ --------- c:\ date /t >C:\PortsReport.txt time /t >>C:\PortsReport.txt portQry -n Server name -e 25 >>C:\PortsReport.txt portQry -n Server name -e 110 >>C:\PortsReport.txt portQry -n Server name -e 80 >>C:\PortsReport.txt set /A STATUS = 0For /F " eol=; delims=: tokens=3" %%I in (' Find /I /C "NOT LISTENING"C:\PortsReport.txt') Do Set status=%%I if /I %STATUS% gtr 0 cscript C:\Errormail.vbs ----- File Name ErrorMail.vbs Set Location as C:\ ---- Set objMessage = CreateObject("CDO.Message") objMessage.Subject = "Server Protocol Status Report" objMessage.From = "" objMessage.To = "" objMessage।TextBody = "" objMessage.AddAttachment "C:\PortsReport.txt" objMessage.Configuration.Fields.Item _(" http://schemas.mi...
Read more

Exchange 2007 Powershell

-
Mailbox Size Report - Individual Database cls Get-MailboxStatistics -Database "ecgcmail01\webmail users\mailboxes" | Sort-Object TotalItemsize -Descending | Where {$_.TotalItemSize -gt 145MB} | ft Displayname , @{expression={$_.TotalItemSize.Value.ToMB()}}, StorageLimitStatus Get-MailboxStatistics -Database "ecgcmail01\general users\mailboxes" | Sort-Object TotalItemsize -Descending | Where {$_.TotalItemSize -gt 65MB} | ft Displayname , @{expression={$_.TotalItemSize.Value.ToMB()}}, StorageLimitStatus ******************************* update 10K Photo in AD Import-RecipientDataProperty -Identity "Bharat Suneja" -Picture -FileData ([Byte[]]$(Get-Content -Path "C:\pictures\BharatSuneja.jpg" -Encoding Byte -ReadCount 0)) ************************************** Enable OWA for list of users $path = “d:\Andy\Owa.txt” foreach ($line in Get-Content $path) { Set-CASMailbox –Identity $line –OWAEnabled:$true } ******************************...
Read more